17 London councils never have a cyber insurance coverage policy in spot to offer assistance in the occasion of a cyber attack on their IT methods.
Which is in accordance to cyber security firm ProLion, which sent Liberty of Info (FOI) requests to just about every of London’s 32 borough councils moreover the City of London in December 2021. In their responses, 17 regional authorities admitted they are not correctly insured versus the risk of a cyber incident.
What’s additional, five councils refused to say no matter whether or not they have in place a cyber coverage coverage, citing Section 31 of the Flexibility of Info Act which exempts the disclosure of data that could “prejudice the prevention or detection of crime”.
A person council stated that disclosing the information and facts relating to cyber insurance coverage could lead to an elevated risk by encouraging an attack, explained ProLion. Other councils said that the disclosure of this kind of information would give cyber criminals perception into doable vulnerabilities, or embolden them to attack those people most at risk.
8 councils were ambiguous or unclear in their reaction to the FOI, when a few councils did not react to the request at all.
“Ransomware attacks have ongoing to fast expand both equally in frequency and sophistication,” reported Steve Arlin, VP Income in UK, Americas & APAC at ProLion. “The circumstance demanded action a lengthy time back, and the issue is now so substantial that corporations just can’t afford to be reactive in their strategy to cybersecurity.”
ProLion pointed out that organisations of all measurements and sectors are feasible targets for opportunistic cyber criminals. Nonetheless, the community sector is probable to hold additional sensitive info, including council tax, health care information, and economical information. “This could possibly clarify why they are a most popular concentrate on and a lot more probably to pay back any ransom calls for,” stated the organization.
Arlin added that for organisations like borough councils, the risk of big volumes of sensitive individual info slipping into the incorrect arms suggests that it could face huge UK GDPR related fines as a result.
ProLion also identified that the study provided insights on councils’ technique to cyber security. One particular agent for a council said that they found out the cyber insurance policies sector to be really demanding and consequently complicated to attain competitive quotations. They extra that they are at present seeking at the two insurance coverage and a cyber consultancy evaluate, which includes self-assessments as a option to their cyber threats.
Some components of this article are sourced from: